Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

All file associations lost


  • Please log in to reply
9 replies to this topic

#1 PD!

PD!

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 07:21 PM

Win XP

Here's the story:

I was using add/remove programs to get rid of unwanted stuff when suddenly my avira anti-virus popped up saying malware detected. Before I could even click anything, the blue screen of death came up saying some gibberish that I'm not computer literate enough to understand (should have written it down but oh well). Upon restart, all of my file associations have been lost so that anything I click asks what program I would like to open it with, including the program shortcuts as well. I accidentally chose to open all .lnk files with Firefox.

 

Upon trying to fix it, I installed a bunch of reg fixes and added them, but it didn't seem to help. I also went into my .lnk registry entry and removed the change to open with firefox, but upon restart, they are still opening with firefox even theough the registry entry is gone.

 

Any help putting the registry back in order and fixing all these broken file associations would be appreciated. And I guess I have to post in the other forum topic to have someone walk me through getting my computer back sqeaky clean?

 

In case its important here, I'll include avira log:

Avira Free Antivirus
Report file date: Tuesday, September 17, 2013  17:01


The program is running as an unrestricted full version.
Online services are available.

Licensee        : Avira Free Antivirus
Serial number   : 0000149996-ADJIE-0000001
Platform        : Microsoft Windows XP
Windows version : (Service Pack 3)  [5.1.2600]
Boot mode       : Normally booted
Username        : SYSTEM
Computer name   : BING1

Version information:
BUILD.DAT       : 13.0.0.4052    55009 Bytes   8/29/2013 18:03:00
AVSCAN.EXE      : 13.6.20.2100   639032 Bytes   8/29/2013 13:42:16
AVSCANRC.DLL    : 13.6.20.2174    52280 Bytes   8/29/2013 13:42:16
LUKE.DLL        : 13.6.20.2174    65080 Bytes   8/29/2013 13:42:37
AVSCPLR.DLL     : 13.6.20.2174    92216 Bytes   8/29/2013 13:42:16
AVREG.DLL       : 13.6.20.2174   250424 Bytes   8/29/2013 13:42:15
avlode.dll      : 13.6.20.2174   497720 Bytes   8/29/2013 13:42:14
avlode.rdf      : 13.0.1.42      26846 Bytes   8/28/2013 13:43:52
VBASE000.VDF    : 7.11.70.0   66736640 Bytes    4/4/2013 14:20:54
VBASE001.VDF    : 7.11.74.226  2201600 Bytes   4/30/2013 04:44:05
VBASE002.VDF    : 7.11.80.60   2751488 Bytes   5/28/2013 00:09:43
VBASE003.VDF    : 7.11.85.214  2162688 Bytes   6/21/2013 00:23:44
VBASE004.VDF    : 7.11.91.176  3903488 Bytes   7/23/2013 18:17:30
VBASE005.VDF    : 7.11.98.186  6822912 Bytes   8/29/2013 13:42:07
VBASE006.VDF    : 7.11.98.187     2048 Bytes   8/29/2013 13:42:07
VBASE007.VDF    : 7.11.98.188     2048 Bytes   8/29/2013 13:42:07
VBASE008.VDF    : 7.11.98.189     2048 Bytes   8/29/2013 13:42:07
VBASE009.VDF    : 7.11.98.190     2048 Bytes   8/29/2013 13:42:08
VBASE010.VDF    : 7.11.98.191     2048 Bytes   8/29/2013 13:42:08
VBASE011.VDF    : 7.11.98.192     2048 Bytes   8/29/2013 13:42:08
VBASE012.VDF    : 7.11.98.193     2048 Bytes   8/29/2013 13:42:08
VBASE013.VDF    : 7.11.99.52    270848 Bytes   8/30/2013 21:37:59
VBASE014.VDF    : 7.11.99.167   210944 Bytes    9/2/2013 22:20:58
VBASE015.VDF    : 7.11.100.3    265216 Bytes    9/3/2013 19:08:59
VBASE016.VDF    : 7.11.100.95   220160 Bytes    9/4/2013 21:40:14
VBASE017.VDF    : 7.11.100.197   143872 Bytes    9/5/2013 09:40:07
VBASE018.VDF    : 7.11.101.11   227840 Bytes    9/6/2013 00:28:57
VBASE019.VDF    : 7.11.101.79   148480 Bytes    9/7/2013 23:41:04
VBASE020.VDF    : 7.11.101.169   305664 Bytes   9/10/2013 06:07:39
VBASE021.VDF    : 7.11.102.9    253440 Bytes   9/12/2013 13:45:32
VBASE022.VDF    : 7.11.102.151   282624 Bytes   9/15/2013 21:50:10
VBASE023.VDF    : 7.11.102.152     2048 Bytes   9/15/2013 21:50:15
VBASE024.VDF    : 7.11.102.153     2048 Bytes   9/15/2013 21:50:15
VBASE025.VDF    : 7.11.102.154     2048 Bytes   9/15/2013 21:50:19
VBASE026.VDF    : 7.11.102.155     2048 Bytes   9/15/2013 21:50:21
VBASE027.VDF    : 7.11.102.156     2048 Bytes   9/15/2013 21:50:21
VBASE028.VDF    : 7.11.102.157     2048 Bytes   9/15/2013 21:50:23
VBASE029.VDF    : 7.11.102.158     2048 Bytes   9/15/2013 21:50:24
VBASE030.VDF    : 7.11.102.159     2048 Bytes   9/15/2013 21:50:25
VBASE031.VDF    : 7.11.102.244   332288 Bytes   9/17/2013 23:50:56
Engine version  : 8.2.12.120
AEVDF.DLL       : 8.1.3.4       102774 Bytes   6/13/2013 23:57:12
AESCRIPT.DLL    : 8.1.4.148     516478 Bytes    9/7/2013 00:29:39
AESCN.DLL       : 8.1.10.4      131446 Bytes   3/27/2013 07:11:54
AESBX.DLL       : 8.2.16.26    1245560 Bytes   8/23/2013 22:05:05
AERDL.DLL       : 8.2.0.128     688504 Bytes   6/13/2013 23:57:06
AEPACK.DLL      : 8.3.2.28      749945 Bytes   9/13/2013 19:47:26
AEOFFICE.DLL    : 8.1.2.76      205181 Bytes    8/9/2013 01:49:13
AEHEUR.DLL      : 8.1.4.630    6164858 Bytes   9/13/2013 19:47:21
AEHELP.DLL      : 8.1.27.6      266617 Bytes   8/28/2013 01:43:59
AEGEN.DLL       : 8.1.7.14      446839 Bytes    9/7/2013 00:29:05
AEEXP.DLL       : 8.4.1.62      328055 Bytes   9/13/2013 19:47:28
AEEMU.DLL       : 8.1.3.2       393587 Bytes   1/27/2013 00:47:14
AECORE.DLL      : 8.1.32.0      201081 Bytes   8/23/2013 22:04:27
AEBB.DLL        : 8.1.1.4        53619 Bytes   1/27/2013 00:47:08
AVWINLL.DLL     : 13.6.20.2174    23608 Bytes   8/29/2013 13:41:51
AVPREF.DLL      : 13.6.20.2174    48184 Bytes   8/29/2013 13:42:15
AVREP.DLL       : 13.6.20.2174   175672 Bytes   8/29/2013 13:42:15
AVARKT.DLL      : 13.6.20.2174   258104 Bytes   8/29/2013 13:42:09
AVEVTLOG.DLL    : 13.6.20.2174   165432 Bytes   8/29/2013 13:42:12
SQLITE3.DLL     : 3.7.0.1       397704 Bytes   3/21/2013 05:41:17
AVSMTP.DLL      : 13.6.20.2174    60472 Bytes   8/29/2013 13:42:17
NETNT.DLL       : 13.6.20.2174    13368 Bytes   8/29/2013 13:42:37
RCIMAGE.DLL     : 13.6.20.2174  4788792 Bytes   8/29/2013 13:41:51
RCTEXT.DLL      : 13.6.20.2175    66616 Bytes    9/5/2013 09:40:06

Configuration settings for the scan:
Jobname.............................: AVGuardAsyncScan
Configuration file..................: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\AVGUARD_5238ed03\guard_slideup.avp
Reporting...........................: default
Primary action......................: Repair
Secondary action....................: Quarantine
Scan master boot sector.............: on
Scan boot sector....................: off
Process scan........................: on
Scan registry.......................: off
Search for rootkits.................: off
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Limit recursion depth...............: 20
Smart extensions....................: on
Macrovirus heuristic................: on
File heuristic......................: Complete
Deviating risk categories...........: +SPR,

Start of the scan: Tuesday, September 17, 2013  17:01
The registration entry <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\SystemRestore\DisableSR> was successfully repaired.
The registration entry <HKEY_USERS\S-1-5-21-73586283-1606980848-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1609> was successfully repaired.
The registration entry <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2500> was successfully repaired.
The registration entry <HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2500> was successfully repaired.
The registration entry <HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AdobeFlashPlayerUpdateSvc> was removed successfully.
The registration entry <HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ADOBEFLASHPLAYERUPDATESVC> was removed successfully.
The registration entry <HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\AdobeFlashPlayerUpdateSvc> was removed successfully.

The scan of running processes will be started:
Scan process 'wmiprvse.exe' - '41' Module(s) have been scanned
Scan process 'avscan.exe' - '88' Module(s) have been scanned
Scan process 'PSDrt.exe' - '56' Module(s) have been scanned
Scan process 'WPFFontCache_v0400.exe' - '19' Module(s) have been scanned
Scan process 'regedit.exe' - '31' Module(s) have been scanned
Scan process 'MRAPP.UI.exe' - '123' Module(s) have been scanned
Scan process 'alg.exe' - '33' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '58' Module(s) have been scanned
Scan process 'cmd.exe' - '24' Module(s) have been scanned
Scan process 'avshadow.exe' - '20' Module(s) have been scanned
Scan process 'WLIDSvcM.exe' - '15' Module(s) have been scanned
Scan process 'wuauclt.exe' - '42' Module(s) have been scanned
Scan process 'hpqwmiex.exe' - '31' Module(s) have been scanned
Scan process 'WLIDSVC.EXE' - '56' Module(s) have been scanned
Scan process 'MRAPP.Transfer.Service.exe' - '97' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'IfxPsdSv.exe' - '20' Module(s) have been scanned
Scan process 'McciCMService.exe' - '27' Module(s) have been scanned
Scan process 'jqs.exe' - '33' Module(s) have been scanned
Scan process 'taskmgr.exe' - '40' Module(s) have been scanned
Scan process 'IFXTCS.exe' - '36' Module(s) have been scanned
Scan process 'ifxspmgt.exe' - '48' Module(s) have been scanned
Scan process 'asghost.exe' - '80' Module(s) have been scanned
Scan process 'MRAPP.Event.Service.exe' - '108' Module(s) have been scanned
Scan process 'btwdins.exe' - '21' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '28' Module(s) have been scanned
Scan process 'svchost.exe' - '77' Module(s) have been scanned
Scan process 'avguard.exe' - '87' Module(s) have been scanned
Scan process 'FlashPlayerUpdateService.exe' - '23' Module(s) have been scanned
  Module is infected -> <C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe>
  [DETECTION] Is the TR/Downloader.Gen Trojan
  [NOTE]      Process 'FlashPlayerUpdateService.exe' was terminated
  [NOTE]      The file could not be copied to quarantine!
  [NOTE]      The file does not exist!
Scan process 'winpatrol.exe' - '38' Module(s) have been scanned
Scan process 'ctfmon.exe' - '25' Module(s) have been scanned
Scan process 'avgnt.exe' - '67' Module(s) have been scanned
Scan process 'Explorer.EXE' - '91' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'sched.exe' - '39' Module(s) have been scanned
Scan process 'SCardSvr.exe' - '23' Module(s) have been scanned
Scan process 'LEXPPS.EXE' - '24' Module(s) have been scanned
Scan process 'spoolsv.exe' - '65' Module(s) have been scanned
Scan process 'LEXBCES.EXE' - '27' Module(s) have been scanned
Scan process 'svchost.exe' - '38' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '167' Module(s) have been scanned
Scan process 'svchost.exe' - '39' Module(s) have been scanned
Scan process 'svchost.exe' - '53' Module(s) have been scanned
Scan process 'svchost.exe' - '68' Module(s) have been scanned
Scan process 'lsass.exe' - '58' Module(s) have been scanned
Scan process 'services.exe' - '27' Module(s) have been scanned
Scan process 'winlogon.exe' - '83' Module(s) have been scanned
Scan process 'csrss.exe' - '12' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
Scan process 'firefox.exe' - '64' Module(s) have been scanned
Scan process 'rsmsink.exe' - '29' Module(s) have been scanned
Scan process 'msdtc.exe' - '40' Module(s) have been scanned
Scan process 'dllhost.exe' - '61' Module(s) have been scanned
Scan process 'dllhost.exe' - '45' Module(s) have been scanned
Scan process 'vssvc.exe' - '48' Module(s) have been scanned

Starting the file scan:

Begin scan in 'C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe'
Search path C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe could not be opened!
System error [2]: The system cannot find the file specified.


End of the scan: Tuesday, September 17, 2013  17:02
Used time: 01:36 Minute(s)

The scan has been done completely.

      0 Scanned directories
   2991 Files were scanned
      2 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
      1 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
   2989 Files not concerned
     23 Archives were scanned
      0 Warnings
      1 Notes

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:54 AM

Posted 17 September 2013 - 08:38 PM

Hello PD

Lets try this

Download or copy both the files to the desktop

LNK FIX
EXE FIX

Extract both and launch them ,click YES

Restart the PC and let me know if you can launch applications now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 08:50 PM

First I must say that I  could not launch them... since all of my file associations are lost when I click the .reg files my computer says "windows cannot open this file" and needs to know what program to use to open it. Instead I just opened my registry and chose import to get them in. Let me know if this is a problem.

 

Restarting now, fingers crossed.



#4 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 09:00 PM

yep, all my applications look good. thanks! There are only a few file types that still seem to be broken: pdf, txt, htm .... to name a few.

 

Do you think you could post any that will be fixes for those?

 

Also, making sure the virus is gone?



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:54 AM

Posted 17 September 2013 - 09:11 PM

Use this for individual files.
http://www.dougknox.com/xp/tips/xp_easy_file.htm


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • >>>
  • Last run ESET.
    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
    • Check "YES, I accept the Terms of Use."
    • Click the Start button.
    • Accept any security warnings from your browser.
    • Under scan settings, check "Scan Archives" and "Remove found threats"
    • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click List Threats
    • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Click the Back button.
    • Click the Finish button.
    • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 09:30 PM

Minitoolbox:

MiniToolBox by Farbar  Version: 13-07-2013
Ran by user1 (administrator) on 17-09-2013 at 19:27:53
Running from "C:\Documents and Settings\user1\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is enabled.
ProxyServer: http=127.0.0.1:16110;https=127.0.0.1:16110;

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection 2 (Connected)
Broadcom NetXtreme Gigabit Ethernet = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 2"

set address name="Wireless Network Connection 2" source=dhcp
set dns name="Wireless Network Connection 2" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : bing1

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Broadcast

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.



Ethernet adapter Local Area Connection 2:



        Media State . . . . . . . . . . . : Media disconnected

        Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet

        Physical Address. . . . . . . . . : 00-16-D4-EC-62-18



Ethernet adapter Wireless Network Connection 2:



        Connection-specific DNS Suffix  . : hsd1.ca.comcast.net.

        Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection #2

        Physical Address. . . . . . . . . : 00-1B-77-0B-D3-AD

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 10.0.0.7

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 10.0.0.1

        DHCP Server . . . . . . . . . . . : 10.0.0.1

        DNS Servers . . . . . . . . . . . : 75.75.75.75

                                            75.75.76.76

        Lease Obtained. . . . . . . . . . : Tuesday, September 17, 2013 6:55:06 PM

        Lease Expires . . . . . . . . . . : Tuesday, September 24, 2013 6:55:06 PM

Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    google.com
Addresses:  74.125.239.40, 74.125.239.35, 74.125.239.34, 74.125.239.32
      74.125.239.41, 74.125.239.38, 74.125.239.39, 74.125.239.36, 74.125.239.37
      74.125.239.46, 74.125.239.33



Pinging google.com [74.125.239.97] with 32 bytes of data:



Reply from 74.125.239.97: bytes=32 time=21ms TTL=54

Reply from 74.125.239.97: bytes=32 time=32ms TTL=54



Ping statistics for 74.125.239.97:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 21ms, Maximum = 32ms, Average = 26ms

Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    yahoo.com
Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=158ms TTL=46

Reply from 98.139.183.24: bytes=32 time=129ms TTL=46



Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 129ms, Maximum = 158ms, Average = 143ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 16 d4 ec 62 18 ...... Broadcom NetXtreme Gigabit Ethernet - Packet Scheduler Miniport
0x3 ...00 1b 77 0b d3 ad ...... Intel® PRO/Wireless 3945ABG Network Connection #2 - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1        10.0.0.7      25
         10.0.0.0    255.255.255.0         10.0.0.7        10.0.0.7      25
         10.0.0.7  255.255.255.255        127.0.0.1       127.0.0.1      25
   10.255.255.255  255.255.255.255         10.0.0.7        10.0.0.7      25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0         10.0.0.7        10.0.0.7      20
        224.0.0.0        240.0.0.0         10.0.0.7        10.0.0.7      25
  255.255.255.255  255.255.255.255         10.0.0.7               2      1
  255.255.255.255  255.255.255.255         10.0.0.7        10.0.0.7      1
Default Gateway:          10.0.0.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/17/2013 04:41:51 PM) (Source: Application Error) (User: )
Description: Fault bucket -1232097105.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (09/17/2013 04:41:46 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module shell32.dll, version 6.0.2900.6242, fault address 0x00172f52.
Processing media-specific event for [explorer.exe!ws!]

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2360

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2360

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6297

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6297

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2013 08:19:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4328

Error: (09/13/2013 08:19:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4328


System errors:
=============
Error: (09/17/2013 06:56:04 PM) (Source: Service Control Manager) (User: )
Description: The System Restore Service service terminated with the following error:
%%2

Error: (09/17/2013 06:56:04 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service failed to start due to the following error:
%%1053

Error: (09/17/2013 06:56:04 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect.

Error: (09/17/2013 06:55:42 PM) (Source: SRService) (User: )
Description: The System Restore initialization process failed.

Error: (09/17/2013 05:02:42 PM) (Source: Service Control Manager) (User: )
Description: The Adobe Flash Player Update Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (09/17/2013 05:01:59 PM) (Source: Removable Storage Service) (User: )
Description: RSM could not load media in drive Drive 0 of library Generic Flash Disk USB Device.

Error: (09/17/2013 05:01:58 PM) (Source: Removable Storage Service) (User: )
Description: RSM could not load media in drive Drive 0 of library Generic Flash Disk USB Device.

Error: (09/17/2013 05:00:17 PM) (Source: Service Control Manager) (User: )
Description: The System Restore Service service terminated with the following error:
%%2

Error: (09/17/2013 05:00:17 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service failed to start due to the following error:
%%1053

Error: (09/17/2013 05:00:17 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect.


Microsoft Office Sessions:
=========================
Error: (09/17/2013 04:41:51 PM) (Source: Application Error)(User: )
Description: -1232097105

Error: (09/17/2013 04:41:46 PM) (Source: Application Error)(User: )
Description: explorer.exe6.0.2900.5512shell32.dll6.0.2900.624200172f52

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2360

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2360

Error: (09/14/2013 08:55:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6297

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6297

Error: (09/13/2013 08:19:03 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/13/2013 08:19:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4328

Error: (09/13/2013 08:19:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4328


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.7.700.169)
Adobe Flash Player 11 Plugin (Version: 11.7.700.169)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Agere Systems HDA Modem
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
AuthenTec Fingerprint Sensor Minimum Install (Version: 7.9)
Avira Free Antivirus (Version: 13.0.0.4052)
BitTorrent (Version: 7.8.1.30016)
Bonjour (Version: 3.0.0.10)
Broadcom NetXtreme Ethernet Controller (Version: 8.22.12)
Catalina Savings Printer (Version: 1.0.0)
Command & Conquer The First Decade (Version: 1.00.0000)
Coupon Printer for Windows (Version: 5.0.0.3)
Credential Manager for HP ProtectTools (Version: 2.5.0.880.13)
Dell AIO Printer A920
Dell Driver Download Manager (Version: 2.1.0.0)
Device Access Manager for HP ProtectTools (Version: 2.0.0.0)
Diablo II
Embedded Security for HP ProtectTools (Version: 5.0.301)
e-Rewards Notify (Version: 1.1.0.83)
ESET Online Scanner v3
FYZip 1.00 (Version: 1.00)
Google Chrome (Version: 29.0.1547.66)
Google Earth (Version: 7.1.1.1888)
Google Talk Plugin (Version: 4.5.3.14917)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 6.6.1124.846)
Google Update Helper (Version: 1.3.21.153)
HP Integrated Module with Bluetooth wireless technology (Version: 4.0.1.3301)
HP Java Card Security for ProtectTools 1.00 B4 (Version: 1.00 B4)
HP Product Detection (Version: 9.7.3)
HP ProtectTools Security Manager (Version: 3.00 A10)
HP Quick Launch Buttons 6.30 J1 (Version: 6.30 J1)
HP Smart Card Security for ProtectTools 5.00 D4 (Version: 5.00 D4)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Jewel Quest III (remove only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Master of Olympus & Master of Atlantis
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Mozilla Firefox 23.0.1 (x86 en-US) (Version: 23.0.1)
Mozilla Maintenance Service (Version: 23.0.1)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
QuickTime (Version: 7.74.80.86)
RealMUD T4C 1.71
Search Protection (Version: 7.3.0.3)
Shattered Galaxy (Version: 1.85)
ShopAtHome.com Helper (Version: 7.0.2.1)
SoundMAX (Version: 5.10.01.4310)
StarCraft
StarCraft II (Version: 2.0.9.26147)
swMSM (Version: 12.0.0.1)
System Requirements Lab for Intel (Version: 4.4.16.0)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 2.00.0004)
The Sims 2
The Sims Complete Collection
Tinker (Version: 1.0.0000.131)
Tinker (Version: 1.0.0001.131)
TIPCI (Version: 2.00.0001)
TIPCI (Version: 2.00.0004)
Tweaking.com - Registry Backup (Version: 1.6.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB980302) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update for Windows XP (KB980182) (Version: 1)
VLC media player 2.0.5 (Version: 2.0.5)
Warcraft III
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)
WinPatrol (Version: 28.1.2013.0)
Wizard101 (Version: 1.0.0)
XML Paper Specification Shared Components Pack 1.0

========================= Memory info: ===================================

Percentage of memory in use: 56%
Total physical RAM: 2039.36 MB
Available physical RAM: 877.5 MB
Total Pagefile: 3924.14 MB
Available Pagefile: 2678.04 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.76 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.76 GB) (Free:326.46 GB) NTFS
2 Drive d: (AGE2_X1) (CDROM) (Total:0.3 GB) (Free:0 GB) CDFS
3 Drive e: (Sims2_1) (CDROM) (Total:0.63 GB) (Free:0 GB) CDFS
4 Drive f: () (Removable) (Total:3.82 GB) (Free:1.01 GB) FAT32

========================= Users: ========================================

User accounts for \\BING1

Administrator            ASPNET                   Guest                    
HelpAssistant            SUPPORT_388945a0         user1                    


**** End of log ****
 



#7 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 09:42 PM

tdss killer:

no threats found



#8 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 17 September 2013 - 10:36 PM

adw cleaner:

# AdwCleaner v3.004 - Report created 17/09/2013 at 20:36:32
# Updated 15/09/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : user1 - BING1
# Running from : C:\Documents and Settings\user1\My Documents\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Documents and Settings\user1\Application Data\Mozilla\Firefox\Profiles\y5rythmd.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Documents and Settings\user1\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Documents and Settings\Administrator.BING1\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [9222 octets] - [17/09/2013 19:46:29]
AdwCleaner[R1].txt - [1024 octets] - [17/09/2013 20:36:32]
AdwCleaner[S0].txt - [9253 octets] - [17/09/2013 20:04:06]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1144 octets] ##########



#9 PD!

PD!
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 18 September 2013 - 01:13 AM

eset:

C:\AdwCleaner\Quarantine\C\Documents and Settings\user1\Application Data\Search Protection\SearchProtection.exe.vir    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Documents and Settings\user1\Application Data\Search Protection\Uninstall.exe.vir    probably a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\61\20de443d-1bee3444    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\bitool.dll    Win32/Somoto.C application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\bundlesweetimsetup.exe    probably a variant of Win32/SweetIM.C application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\nsh8.tmp    Win32/Somoto.A application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\nsjE1D.tmp    Win32/Somoto.A application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\toolbar1217567093.exe    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\toolbar1217567453.exe    a variant of Win32/Toolbar.Babylon.E application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\uninstall1262710656.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\7BADAE2F-BAB0-7891-ADAA-A9FA5D7F943D\BabMaint.exe    a variant of Win32/Toolbar.Babylon.I application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\7BADAE2F-BAB0-7891-ADAA-A9FA5D7F943D\ccp.exe    Win32/Toolbar.Babylon.M application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\temp\7BADAE2F-BAB0-7891-ADAA-A9FA5D7F943D\MyBabylonTB.exe    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\Temporary Internet Files\Content.IE5\1142SBQV\BiTool[1].dll    Win32/Somoto.C application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\Temporary Internet Files\Content.IE5\7XR8874U\Setup[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\user1\Local Settings\Temporary Internet Files\Content.IE5\9Z8GA8VJ\bi_downloader[1].exe    Win32/Somoto.A application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\My Documents\Downloads\Alcohol120_trial_2.0.2.4713.exe    a variant of Win32/InstallCore.CH application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\My Documents\Downloads\DAEMONToolsUltra110-0103.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Documents and Settings\user1\My Documents\Downloads\pidgin_installer_d154706.exe    a variant of Win32/InstallIQ.A application    cleaned by deleting - quarantined
C:\Program Files\Avira\AntiVir Desktop\apnic.dll    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files\Avira\AntiVir Desktop\apntoolbarinstaller.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files\Avira\AntiVir Desktop\Offercast_AVIRAV7_.exe    a variant of Win32/Bundled.Toolbar.Ask.D application    cleaned by deleting (after the next restart) - quarantined
 

 

 

and so far I am not getting any antivirus notifications, so all looks pretty good.



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:54 AM

Posted 18 September 2013 - 09:56 AM

Looks good here !


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users